CVEs (4)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Nimbletech 1Ezcast Pro Dongle Ii Firmware Feb 5, 2026 Jan 27, 2026 7.4 HIGH· v4 6.1 MEDIUM· v3 N/A· v2 Multiple cross-site scripting vulnerabilities in Admin UI of EZCast Pro II version 1.17478.146 allow attackers to execute arbitrary JavaScript code in the browser of other Admin UI users. |
1Nimbletech 1Ezcast Pro Dongle Ii Firmware Feb 5, 2026 Jan 27, 2026 5.7 MEDIUM· v4 5.3 MEDIUM· v3 N/A· v2 Improper input validation in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to manipulate files in the /tmp directory |
1Nimbletech 1Ezcast Pro Dongle Ii Firmware Feb 5, 2026 Jan 27, 2026 7.6 HIGH· v4 9.1 CRITICAL· v3 N/A· v2 Use of well-known default credentials in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to access protected areas in the web application |
1Nimbletech 1Ezcast Pro Dongle Ii Firmware Feb 5, 2026 Jan 27, 2026 6.8 MEDIUM· v4 8.8 HIGH· v3 N/A· v2 Cross-Site Request Forgery in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to bypass authorization checks and gain full access to the admin UI |